{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0b679bdf-cc89-5038-8365-8d7a97c32935", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1", "type": "library", "name": "astrojs-rss", "version": "4.16.19-tuxcare.1", "purl": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:12e754b3-57cf-5a35-a4c3-f7c3312d6852", "id": "AIKIDO-2025-10879", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2025-10879 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8489a7fc-bee1-5e6d-88dc-addb700d6962", "id": "CVE-2025-55303", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55303 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd828a43-84fc-5c54-b76f-dd5fd32c8ffb", "id": "CVE-2025-61925", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61925 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06cc6316-c731-53c1-b5cc-f5ee439fdc84", "id": "CVE-2025-64525", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64525 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3343a35f-2fa7-5f05-9596-fdf1588a1e63", "id": "CVE-2025-64757", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64757 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:074a5cd7-21ee-5225-8e63-0d3b24a94ed9", "id": "CVE-2025-64764", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64764 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de109d6e-5f6e-5363-818a-a72e80921a2b", "id": "CVE-2025-64765", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64765 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ceb97a24-89ae-56a8-a273-64c1e798e228", "id": "CVE-2025-65019", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-65019 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:333adc95-feaf-557b-91d4-f8aa0ccfd62e", "id": "CVE-2025-66202", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66202 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb4604b2-f6d5-5603-ac57-1980808527a3", "id": "CVE-2026-32887", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32887 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7af4a1f9-ea38-55a7-b6ae-a4611876dd70", "id": "CVE-2026-33128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33128 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62aa044f-c163-5c7d-b939-5ee99df5a37d", "id": "CVE-2026-33131", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33131 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0d20b54-f456-5766-b431-1b3de95a9730", "id": "CVE-2026-33490", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33490 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2aa3674f-5f00-5fb6-8397-bd26e01229f0", "id": "CVE-2026-33769", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33769 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b95f93c2-aa50-54c4-bf75-90c12d9ca6ed", "id": "CVE-2026-41067", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41067 is fixed in version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd329ece-4743-5ff3-8e67-051f76dc43b9", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c261f56e-d602-5dae-b2d7-ac93a70be4e1", "id": "GHSA-4hxc-9384-m385", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-4hxc-9384-m385 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ab8306b-550a-5b41-a4bb-2433b0da89ce", "id": "GHSA-q5pr-72pq-83v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q5pr-72pq-83v3 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:783eb284-8e29-5aaf-b0a0-b96887a7da5d", "id": "GHSA-wr4h-v87w-p3r7", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-wr4h-v87w-p3r7 affects version 4.16.19-tuxcare.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/astrojs-rss@4.16.19-tuxcare.1" } ] }